Information & Library Services » passwordhttp://www.bates.edu/ils
Wed, 29 Jul 2015 15:29:25 +0000en-UShourly1http://wordpress.org/?v=4.1.6Sponsored Password Change Processhttp://www.bates.edu/ils/2011/how-do-i/network/sponsored-password-change-process/
http://www.bates.edu/ils/2011/how-do-i/network/sponsored-password-change-process/#commentsTue, 13 Dec 2011 18:05:56 +0000http://www.bates.edu/ils/?p=4058For users who have forgotten their password, or whose password has expired, the College provides the ability to change the password using the Sponsored Password Change Process. For most users the Sponsored Password Change Process can be initiated from either on or off campus.

ON CAMPUS

A user who is on campus and has forgotten their password should come to Help Desk Services, located in the George and Helen Ladd Library, and presenting a valid form of ID. (Bates ID card, Driver’s License, Passport, State ID Card, or Military ID Card). A member of the Help Desk Services professional staff will assist them with logging into Password Manager and setting up a new Network Password.

OFF CAMPUS

A user who is off campus and has forgotten their password will need to contact Help Desk Services at (207) 786-8222 between the hours of 8:00am – 5:00pm EST, Monday – Friday. A professional staff member will need to verify their identity and will then assist them with setting up a new Network Password. We will need to have a valid alternate email address or mobile phone with text capability on file in order to complete the password change process.

If traditional phone service is unavailable, Help Desk Services can also assist with changing passwords over Skype. If this is an option, please email helpdesk@bates.edu with your name, Skype name and a time that we can contact you.

If no phone or Internet service is readily available, we will need the user to fill out a Sponsored Password Change Form, and either fax (207) 753-6939, scan or submit via camera picture the completed form and a photo of a valid ID.

Does this year’s password change include Banner PINs as well?
No, this is only for the network password, which includes e-mail.[top]

When will my new password expire?
Your password will expire 365 days from the date you last changed it.[top]

What are the strength rules for passwords?
The Password Manager states the password strength rules it also provides the ability to have the system generate some suggested passwords that will pass the strength test. If you create your own password and it fails the strength test the system will communicate the reason for the failure (e.g., password must contain an upper case character, etc). This will aid in the process of choosing a new password.[top]

Can I use a previous password?
The use of previous passwords is not allowed, this is enforced by the Password Manager when you chose a new password.[top]

How can I choose a strong password?
The password strength rules in Password Managercan help you choose a strong password but keep in mind that these rules are used to enforce the minimum strength. One good way to increase the strength of your password is to increase the length of it.[top]

What can I do to help me remember my new password? There are a number of things you can do:

Write it down.
It should be the only thing on the paper, do not include your username. When writing down a password you should obfuscate it in some fashion, such as adding characters to it or taking characters out so that someone who sees it will have a hard time guessing your password. Once you’ve written it down you should store it in a safe place like a locked drawer. After you have memorized your password you should destroy the paper so that the password only exists in your head.

Type it thirty (30) times in a row.
Typing your password thirty times will help you commit it to muscle memory.

Chose not to have applications save your password.
By choosing not to have applications save your password you will force yourself to type your password more often. This will improve your ability to remember your password.

What happens if I forget my password or it gets stolen? If you feel that your password may have become compromised you should immediately use the Password Manager to change the password. If you have forgotten your password or someone has changed your password without your knowledge you should immediately go to Help Desk Services the Ladd Library with their Bates ID. The professional staff will guide you through the Sponsored Password Change Process. Using this efficient process you will be able to change your password with Password Manager using a temporary password called a Password Change Token. [top]

How do I use my Password Change Token to access the Password Manager in order to change my password, where can I do it?
A kiosk computer can be used to access Password Manager. Kiosks are located throughout Ladd Library and some other campus buildings. The instructions for using your Password Change Token will be provided along with the token.[top]

How long is the Password Change Token valid?
A Password Change Token is valid for 24 hours from the time of generation. A Password Change Token is immediately invalidated as soon as the user changes their password using Password Manager. If the Password Change Token expires prior to the user changing their password the user will be required to follow the Sponsored Password Change Process again in order to be issued a new Password Change Token.[top]

What happens if I forget to change my password before my Password Change Token expires?
Thirty (30) days prior to the expiration of your password you will begin to receive automated e-mail notifications stating when your password will expire and directing you to use the Password Manager to change your password. If the expiration of your password passes your access to all network resources, except Password Manager, will be disabled. Password Manager will allow you to login using your current, expired, password for thirty (30) after your password has expired. After your password has been expired for more than thirty (30) days, the only way to change your password will be through the Sponsored Password Change Process.[top]

Is the Password Manager only available on campus, or can it be accessed from any Internet connection?
The Password Manager is accessible from any Internet connection.[top]

What happens to my College-owned laptop when I change my password while off-campus?
If you change your password while you are off campus your laptop will not be immediately updated with the new password because you will not be connected to the College network. Until you return your laptop to campus you will have to use your old password to access your laptop and your new password to access all network resources. Once you return your laptop to campus it will be automatically updated with the new password. NOTE: If you use the VPN to connect to campus from the Internet your laptop will be automatically updated with the new password. [top]

Why do we need this level of security? What are we trying to protect?
The College takes the security of our network and systems seriously. Your personal files, e-mail, and other documents are important to you and the College. For these reasons the College has developed password management policies and procedures to safe guard your password and your privacy.[top]

Never give your Bates password to anyone. It can be used to look at confidential information beyond email.

Log out or reboot your computer if you leave it on over night.

Log out of email after you are done or even better, reboot the computer especially if it is a shared computer.

Lock your computer if you are stepping away from your desk for any long period of time. [windows = press control/alt/delete simultaneously, macintosh, please consult locking Macintosh help sheet.

Use a paper shredder to destroy sensitive paper communications.

B. Passwords:

Should be 6 or more characters long. A mix of letters and numbers at the very least. Preferrably including a special character like !@#$%^& if the system in question will accept them.

Not easily figured out like birthdays, pet’s or children’s names, phone numbers, social security numbers or license plates.

Don’t use the same password for every internet site you visit… if it is compromised, you’ve lost security everywhere.

Don’t use your current Bates password on systems outside of Bates. Feel free to recycle an old one that was wickedly difficult to type, but that you still remember.

Memorize all of your passwords. Don’t keep a copy in your purse or wallet. Please don’t tape your password to your monitor, or to the bottom of your keyboard, or keep it in the top drawer of your desk.

Buy a cheap paper shredder and destroy sensitive documents that you would otherwise just throw away.

Be very careful of Social Engineering. Unless you make the initial contact, do not give out any personal information especially credit card numbers, Social Security numbers or passwords over the phone.

If you feel you need to give someone your information (Social security number, mother’s maiden name, PIN, password) then call the organization at a number that you looked up or that is in the statement that they mail to you.

Request from the major businesses that you work with that they do not share your name and address with their business partners.

If you own a non-Bates laptop, password protect it and record all Serial Number information in case of theft.

When throwing away or donating an old computer, make sure the hard drive is erased and all sensitive material is deleted

]]>http://www.bates.edu/ils/2011/how-do-i/secure/protecting-your-computer/feed/0Password Change Processhttp://www.bates.edu/ils/2011/how-do-i/network/password-change-process/
http://www.bates.edu/ils/2011/how-do-i/network/password-change-process/#commentsWed, 31 Aug 2011 23:49:41 +0000http://www.bates.edu/ils/?p=607Notification will be sent via e-mail to each Bates community member with a network account starting one month from the anniversary from when they changed their network password. Accomplishing this password change process is done by logging into Password Manager. Instructions are online once you login with your username and current password.

]]>http://www.bates.edu/ils/2011/how-do-i/network/password-change-process/feed/0Macintosh: Changing Keychain Login to New Network Passwordhttp://www.bates.edu/ils/2011/how-do-i/network/macintosh-changing-keychain-login-to-new-network-password/
http://www.bates.edu/ils/2011/how-do-i/network/macintosh-changing-keychain-login-to-new-network-password/#commentsWed, 31 Aug 2011 23:16:27 +0000http://www.bates.edu/ils/?p=568Annual network password change can necessitate changing your keychain login password in order to unlock the file on a macintosh that stores all saved passwords and certificates. If the two passwords do not match, the computer will give an error message indicating that a saved password cannot be accessed.

A. To locate and change the keychain login password:

Open the Applications folder from the harddrive (A)

Open the Utilities folder, then Keychain Access (B)

Next open your home folder

Followed by Library > Keychain

Expand Keychain to see login.keychain. Opening the file will display all passwords and certificates stored there.

NOTE: If you never save passwords (login.keychain file is empty), simply delete this file after changing your network password. It will be recreated the next time you login, and will synch automatically with the new password.

Bates College Information Services is dedicated to keeping the Bates network and your Bates data as safe as possible, through the use of secure passwords.

Password Security

It is critical that all members of the Bates community keep their passwords secure and confidential. You should never share any of your Bates passwords with friends, family or staff members. Bates will never ask you for any of your passwords in person, over the phone or via email. If you feel your passwords may have been compromised, please change it or request a new one as soon as possible

Password Management and Expiration

Your network (and email) password expires 365 days after it has been issued or changed. When a password is within 30 days of expiration a series of automated e-mail messages will be sent to notify you that it is time to change the password. If you miss the expiration deadline, you will be automatically locked out of your email and network accounts until the password is changed. You will be able to login to Password Manager with your expired password for up to a month after the expiration date. The e-mail warning messages will stop as soon as you change the password using the Password Manager.

For verification purposes the reminder message appears as the following.

<Your Name>
Your Bates network password is scheduled to expire on <Date> @ <Time>
Please use the Password Manager to change your password.
1 – To get to the Password Manager, go to the Bates College home page, http://www.bates.edu and in the lower right corner, click on the “A-Z Index”.
2 – In the “P” section, click on “Password Manager”.
3 – Login with your current Bates username and password.
4 – Select the “Change Password” option along the top menu.
For questions or problems please contact Help Desk Services at (207) 786-8222.
To verify the authenticity of this message, a generalized version can be found by going to http://passwords.bates.edu

Garnet Gateway – This password is issued to all Bates employees. The login for the Garnet Gateway is comprised of your Bates ID number and a password. If you need help accessing your Garnet Gateway account, please contact Help Desk Services directly. This password is not necessarily the same as your network password.

Banner – Banner credentials are issued to authorized users only. If new or replacement credentials are needed, please contact Help Desk Services directly.

Guest Accounts – Bates employees can request guest credentials for visitors and affiliates by logging into the Garnet Gateway, clicking on the Employee Menu tab and at the bottom, selecting Request Network Access.